Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0AA0A66C1C02D2F0667BDF6DAFDD67C2A813FEFBED6D0F463951A042884077C/0/34352e3137392e3136352e302f32342d3234203d3e20323639373330.roa
File:                     34352e3137392e3136352e302f32342d3234203d3e20323639373330.roa (raw, json)
Hash identifier:          EdZLoC1c46OUfTiSb/OQCn0ANsvYhjpGiAoW/Gzk+ro=
Subject key identifier:   2A:E3:FC:7A:35:A0:78:32:82:46:0A:9B:D9:D5:45:08:61:70:06:11
Certificate issuer:       /CN=E5929BB59C0C723C97245BF0DCF866772F479B73
Certificate serial:       370B5DDFE33FAABFFD61639CC0D1AEEEF95E3587
Authority key identifier: E5:92:9B:B5:9C:0C:72:3C:97:24:5B:F0:DC:F8:66:77:2F:47:9B:73
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E5929BB59C0C723C97245BF0DCF866772F479B73.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D0AA0A66C1C02D2F0667BDF6DAFDD67C2A813FEFBED6D0F463951A042884077C/0/34352e3137392e3136352e302f32342d3234203d3e20323639373330.roa
Signing time:             Thu 21 Nov 2024 21:35:01 +0000
ROA not before:           Thu 21 Nov 2024 21:30:01 +0000
ROA not after:            Thu 20 Nov 2025 21:35:01 +0000
asID:                     269730
IP address blocks:        45.179.165.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            37:0b:5d:df:e3:3f:aa:bf:fd:61:63:9c:c0:d1:ae:ee:f9:5e:35:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E5929BB59C0C723C97245BF0DCF866772F479B73
        Validity
            Not Before: Nov 21 21:30:01 2024 GMT
            Not After : Nov 20 21:35:01 2025 GMT
        Subject: CN=2AE3FC7A35A0783282460A9BD9D5450861700611
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:2c:cb:57:63:08:1c:d3:02:91:36:82:a2:2a:
                    54:bb:5d:d8:ac:bf:75:0f:91:a4:c0:73:d6:74:6e:
                    02:e0:f1:2b:fd:31:cd:0f:6a:cc:d3:f7:d8:3e:b9:
                    ef:79:b5:04:a5:66:0a:08:27:e7:8e:7b:ad:db:dd:
                    bd:7e:03:a5:8b:6f:ca:87:47:81:d9:2d:97:4d:eb:
                    4f:47:35:54:8c:b9:f5:b4:b1:b9:a3:29:54:5c:bb:
                    2d:f3:1c:12:a1:2c:29:b0:64:99:d4:c4:cc:5f:96:
                    ca:dd:14:b1:b0:ae:a3:4d:ef:56:f9:0c:12:95:d2:
                    97:d0:55:00:34:c1:e5:bf:fc:f1:ba:df:8a:2f:f8:
                    80:b1:4f:1a:c1:16:18:01:7a:ef:b0:1c:50:35:c0:
                    97:87:d7:34:8f:ec:ae:0b:e2:3e:60:d6:2c:87:10:
                    3f:ef:3e:bf:e1:e1:b1:ed:f5:da:b3:87:ab:f6:01:
                    43:41:e2:07:25:b2:74:e1:84:20:46:25:f0:98:3c:
                    4a:21:87:a2:d0:7e:0a:4f:26:95:7c:50:3a:e9:fe:
                    88:be:c7:f2:c0:e9:d8:84:39:a3:f3:57:89:03:9a:
                    cd:b6:84:ca:04:08:c8:bc:04:c2:0e:c1:63:12:1d:
                    63:c4:9a:d6:75:f9:b7:f8:5e:22:f7:03:f8:cd:08:
                    43:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:E3:FC:7A:35:A0:78:32:82:46:0A:9B:D9:D5:45:08:61:70:06:11
            X509v3 Authority Key Identifier:
                keyid:E5:92:9B:B5:9C:0C:72:3C:97:24:5B:F0:DC:F8:66:77:2F:47:9B:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D0AA0A66C1C02D2F0667BDF6DAFDD67C2A813FEFBED6D0F463951A042884077C/0/E5929BB59C0C723C97245BF0DCF866772F479B73.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E5929BB59C0C723C97245BF0DCF866772F479B73.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0AA0A66C1C02D2F0667BDF6DAFDD67C2A813FEFBED6D0F463951A042884077C/0/34352e3137392e3136352e302f32342d3234203d3e20323639373330.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.179.165.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b5:cc:27:d3:35:76:fe:08:2e:05:92:21:54:e4:2b:b6:03:bd:
         a3:7a:8a:38:c4:cc:51:3a:59:53:f4:46:ef:a1:7a:7e:8f:c2:
         3e:3c:b1:65:23:2e:d0:aa:0e:d4:51:f2:23:ee:98:1e:63:46:
         ac:c2:ed:3d:65:6d:af:08:ef:c6:b6:e2:e6:f2:8a:66:65:cd:
         55:f6:69:dc:55:f1:86:75:e7:0c:d2:9b:b8:d3:ef:04:ae:55:
         53:87:95:43:b9:43:63:64:92:c3:3b:14:d3:69:37:a7:3d:93:
         8e:fe:da:5b:c6:d9:ac:a9:70:d5:a2:4c:9a:3e:ec:11:aa:4c:
         c7:61:e0:b1:e5:6d:86:5c:15:2f:b9:4c:f9:df:3b:57:e4:51:
         7b:f5:78:10:60:1e:c6:ea:c9:57:41:d9:10:24:69:2a:57:57:
         21:48:f1:fa:8f:59:8f:2a:a0:b9:9c:ad:44:c5:8c:d0:5a:a2:
         56:fe:07:f2:23:8f:41:e5:47:2e:bc:f7:ed:26:c8:b3:f4:33:
         8e:ae:27:f5:36:d7:55:8f:3b:47:36:0e:8c:08:2b:43:36:91:
         5b:e4:29:99:7c:32:61:2d:81:12:ec:75:99:c3:af:b2:f3:77:
         6e:d1:c2:9a:56:7e:2c:b2:97:01:3e:1f:a1:82:b2:83:44:b5:
         7c:b0:3d:7d
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUNwtd3+M/qr/9YWOcwNGu7vleNYcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTU5MjlCQjU5QzBDNzIzQzk3MjQ1QkYwRENGODY2Nzcy
RjQ3OUI3MzAeFw0yNDExMjEyMTMwMDFaFw0yNTExMjAyMTM1MDFaMDMxMTAvBgNV
BAMTKDJBRTNGQzdBMzVBMDc4MzI4MjQ2MEE5QkQ5RDU0NTA4NjE3MDA2MTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNLMtXYwgc0wKRNoKiKlS7Xdis
v3UPkaTAc9Z0bgLg8Sv9Mc0PaszT99g+ue95tQSlZgoIJ+eOe63b3b1+A6WLb8qH
R4HZLZdN609HNVSMufW0sbmjKVRcuy3zHBKhLCmwZJnUxMxflsrdFLGwrqNN71b5
DBKV0pfQVQA0weW//PG634ov+ICxTxrBFhgBeu+wHFA1wJeH1zSP7K4L4j5g1iyH
ED/vPr/h4bHt9dqzh6v2AUNB4gclsnThhCBGJfCYPEohh6LQfgpPJpV8UDrp/oi+
x/LA6diEOaPzV4kDms22hMoECMi8BMIOwWMSHWPEmtZ1+bf4XiL3A/jNCEPVAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUKuP8ejWgeDKCRgqb2dVFCGFwBhEwHwYDVR0j
BBgwFoAU5ZKbtZwMcjyXJFvw3Phmdy9Hm3MwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EMEFBMEE2NkMxQzAyRDJGMDY2N0JERjZEQUZERDY3QzJB
ODEzRkVGQkVENkQwRjQ2Mzk1MUEwNDI4ODQwNzdDLzAvRTU5MjlCQjU5QzBDNzIz
Qzk3MjQ1QkYwRENGODY2NzcyRjQ3OUI3My5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FNTkyOUJCNTlDMEM3MjNDOTcy
NDVCRjBEQ0Y4NjY3NzJGNDc5QjczLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDBBQTBBNjZDMUMwMkQyRjA2NjdCREY2REFGREQ2N0MyQTgxM0ZFRkJF
RDZEMEY0NjM5NTFBMDQyODg0MDc3Qy8wLzM0MzUyZTMxMzczOTJlMzEzNjM1MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM5MzczMzMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALbOl
MA0GCSqGSIb3DQEBCwUAA4IBAQC1zCfTNXb+CC4FkiFU5Cu2A72jeoo4xMxROllT
9EbvoXp+j8I+PLFlIy7Qqg7UUfIj7pgeY0aswu09ZW2vCO/GtuLm8opmZc1V9mnc
VfGGdecM0pu40+8ErlVTh5VDuUNjZJLDOxTTaTenPZOO/tpbxtmsqXDVokyaPuwR
qkzHYeCx5W2GXBUvuUz53ztX5FF79XgQYB7G6slXQdkQJGkqV1chSPH6j1mPKqC5
nK1ExYzQWqJW/gfyI49B5UcuvPftJsiz9DOOrif1NtdVjztHNg6MCCtDNpFb5CmZ
fDJhLYES7HWZw6+y83du0cKaVn4sspcBPh+hgrKDRLV8sD19
-----END CERTIFICATE-----